Joint  Iterative  Decoding  and 
Authentication  (JIDA) 


David  Carman 


McAfee 

^ T security 


Michael  Jordan 


Dr.  Charles  Boncelet,  Renwei  Ge,  Dr.  Gonzalo  Arce 


Dr.  Giovanni  Di  Crescenzo 


ij®  Telcordia 
Technologies 

Performance  from  Experience 


Prepared  through  collaborative  participation  in  the  Collaborative  Technology 
Alliance  for  Communications  &  Networks  sponsored  by  the  US  Army  Research 
Laboratory  under  Cooperative  Agreement  DAAD1 9-01-2-0011 

APPROVED  FOR  PUBLIC  RELEASE 

NATO  Cross-Layer  Workshop  -  Joint  Iterative  Decoding  and  Authentication  -  June  2-3,  2004  email:  dcarman@nai.com 


Report  Documentation  Page 

Form  Approved 

OMB  No.  0704-0188 

Public  reporting  burden  for  the  collection  of  information  is  estimated  to  average  1  hour  per  response,  including  the  time  for  reviewing  instructions,  searching  existing  data  sources,  gathering  and 
maintaining  the  data  needed,  and  completing  and  reviewing  the  collection  of  information.  Send  comments  regarding  this  burden  estimate  or  any  other  aspect  of  this  collection  of  information, 
including  suggestions  for  reducing  this  burden,  to  Washington  Headquarters  Services,  Directorate  for  Information  Operations  and  Reports,  1215  Jefferson  Davis  Highway,  Suite  1204,  Arlington 

VA  22202-4302.  Respondents  should  be  aware  that  notwithstanding  any  other  provision  of  law,  no  person  shall  be  subject  to  a  penalty  for  failing  to  comply  with  a  collection  of  information  if  it 
does  not  display  a  currently  valid  OMB  control  number. 

1 .  REPORT  DATE  2.  REPORT  TYPE 

01  DEC  2007  N/A 

3.  DATES  COVERED 

4.  TITLE  AND  SUBTITLE 

Joint  Iterative  Decoding  and  Authentication 

5a.  CONTRACT  NUMBER 

5b.  GRANT  NUMBER 

5c.  PROGRAM  ELEMENT  NUMBER 

6.  AUTHOR(S) 

5d.  PROIECT  NUMBER 

5e.  TASK  NUMBER 

5f.  WORK  UNIT  NUMBER 

7.  PERFORMING  ORGANIZATION  NAME(S)  AND  ADDRESS(ES) 

McAfee  Research,  Network  Associates 

8.  PERFORMING  ORGANIZATION 

REPORT  NUMBER 

9.  SPONSORING/MONITORING  AGENCY  NAME(S)  AND  ADDRESS(ES) 

10.  SPONSOR/MONITOR'S  ACRONYM(S) 

11.  SPONSOR/MONITOR'S  REPORT 
NUMBER(S) 

12.  DISTRIBUTION/AVAILABILITY  STATEMENT 

Approved  for  public  release,  distribution  unlimited. 

13.  SUPPLEMENTARY  NOTES 

14.  ABSTRACT 

15.  SUBIECT  TERMS 

16.  SECURITY  CLASSIFICATION  OF:  17.  LIMITATION  OF 

18.  NUMBER  19a.  NAME  OF 

a.  REPORT  b.  ABSTRACT  c.  THIS  PAGE  |J|J 

unclassified  unclassified  unclassified 

9 

Standard  Form  298  (Rev.  8-98) 

Prescribed  by  ANSI  Std  Z39-18 


JIDA  Objectives 


2.  Reduce  decoder  latency  °utputBER  Au^ee“ed 


-  Reduce  number  of  decoder  iterations  by 
having  the  authentication  module  declare 
packet  “authentic”  or  “correct”  packet 
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High-Level  Approach 
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Noise-Tolerant  MAC  (NTMAC) 

•  Invented  by  Dr.  Charles  Boncelet 


Message 


Two  partitions 


Sender  creates  one  or 
more  copies  of 
message  (“partitions”) 


block  tag  tags  to  message 
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NTMAC  Receive  Processing 


Received  Message 


Receiver  computes 
NTMAC  tags  based  on 
shared  key  and 
received  message 
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7/8/4  NTMAC 

•  Tradeoff  single-bit  forgery  security  for  error  localization 

-  7  partitions,  8  blocks/partition,  4-bit  block  tags  ->  224-bit  NTMAC 
authentication  tag 

-  32-bit  BCH  parity  check  over  the  NTMAC  tag  (n=255,  k=223,  t=4  errors) 

-  Probability  of  a  single-bit  forgery  is  2~28  per  attempt 
•  security  increases  for  multiple-bit  forgery  attempts 

•  Authentication  module  returns  one  of  four  “flags”: 

-  “Authentic”  -  the  input  data/tag  pair  is  authentic 

-  “Authentic  when  corrected”  -  the  input  data/tag  pair  is  authentic  when 
corrected  as  denoted 

-  “Estimate  provided”  -  can  not  correct  the  input  data/tag  pair  to  authentic 
result,  but  an  estimate  of  the  log-likelihood  ratio  of  each  bit  is  provided 

-  “Too  many  errors”  -  cannot  distinguish  correct  and  error  bits 

•  NTMAC/CE  “Hybrid”  Termination  Criteria 

1 .  Total  Iterations  =  30,  or 

2.  NTMAC  returns  AUTHENTIC,  or 

3.  NTMAC  returns  AUTHENTIC_WHEN_CORRECTED,  or 

4.  NTMAC  returns  TOO  MANY  ERRORS  and  CE  recommends  termination 
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Monte  Carlo  Simulation 


•  Two  parallel  concatenated  rate  _  constituent 
convolutional  coders  (generating  polynomial  7,5) 
produce  net  rate  1/3  (unpunctured)  or  rate  _ 
(punctured)  turbo  code 

•  16384-bit  S-random  interleaver  with  S=52 

•  Linear  additive  white  Gaussian  (AWGN)  channel 

•  Compare  Two  Termination  Criteria 

1.  Cross-Entropy  (CE) 

-  Calculates  the  approximate  cross-entropy  between  the 
distributions  at  the  end  of  successive  iterations  and  terminates 
decoding  of  a  data  frame  when  the  value  falls  below  a  user 
specified  value 

-  16384  bits  of  data  per  frame  (no  checksum  bits) 

-  Terminate  after  six  iterations  even  if  CE  threshold  not  met 

2.  7/8/4  NTMAC/CE  “Hybrid” 

-  16128  bits  of  data  plus  256  total  tag/checksum  bits  per  frame 
-  Errors  occur  in  both  data  and  tag/checksum  portions 
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Average  Number  of  Iterations 


Average  Iterations  -  16384-bit  Frames 


“Hybrid”  termination  method  significantly  increases 
average  iterations  per  frame  for  low  Et/NQ 
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FEROut  BEROut 


Bit  and  Frame  Error  Rates 

1 6384-bit  Frames 
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7/8/4  NTMAC 
significantly 
improves  output 
bit  error  rate 


7/8/4  NTMAC 
significantly 
improves  output 
frame  error  rate 
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